cve
base
Search
Products
Trending
About
Docs
Pricing
Home
/
Products
/
ini_project
/
Ini Project Ini
Ini Project Ini vulnerabilities
1 known vulnerability affecting
ini_project/ini
.
Version
All versions
Total CVEs
1
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL
1
Vulnerabilities
Page 1 of 1
CVE-2020-7788
CRITICAL
CVSS 9.8
fixed in 1.3.6
·
≥ unspecified, < 1.3.6
2020-12-11
CVE-2020-7788 [CRITICAL] CWE-1321 CVE-2020-7788: This affects the package ini before 1.3.6. If an attacker submits a malicious INI file to an applica This affects the package ini before 1.3.6. If an attacker submits a malicious INI file to an application that parses it with ini.parse, they will pollute the prototype on the application. This can be exploited further depending on the context.
ghsa
nvd
osv